Re: Antwort: Bind 8 hardening {Scanned}

This is a discussion on Re: Antwort: Bind 8 hardening {Scanned} within the Bind Users forums, part of the DNS and Related Forums category; Hi Holger, Here is more info on my system configuration: Server has 2 Nics w/ the following ip addresses: Nic ...


Go Back   Usenet Forums > DNS and Related Forums > Bind Users

Reload this Page Re: Antwort: Bind 8 hardening {Scanned}

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 12-29-2004
SW
 
Posts: n/a
Default Re: Antwort: Bind 8 hardening {Scanned}
Hi Holger,
Here is more info on my system configuration:

Server has 2 Nics w/ the following ip addresses:

Nic A is facing the Internet w/ ip address 100.168.100.1/24 (this is not my real ip address, but changed for security reasons to post in a public forum)

Nic B is on a private ip address and does not interact w/ the Internet w/ ip address 192.168.1.1/24

So, with that here is my complete /etc/named.conf for primary name server:

acl internal { 192.168.100/24; 209.8.232/24; };
acl slaves { 100.168.100.50; };

options {
directory "/hsphere/local/var/named";
listen-on { 127.0.0.1; 100.168.100.10; };
allow-transfer { 100.168.100.50; };
allow-query { internal; };
allow-recursion { internal; };
recursion no;
fetch-glue no;
use-id-pool yes;
transfer-source 127.0.0.1;
pid-file "/hsphere/local/var/named/named.pid";
};

zone "." IN { type hint; file "local/named.ca"; };
zone "localhost" IN { type master; file "local/localhost.zone"; allow-update { none; }; };
zone "0.0.127.in-addr.arpa" IN { type master; file "local/named.local"; allow-update { none; }; };
zone "100.168.100.in-addr.arpa" { type master; file "100.168.100"; allow-update { none; }; };

include "zones_index.conf";

And my secondary name server /etc/named.conf has the following:

acl internal { 192.168.1/24; 209.8.232/24; };

options {
directory "/hsphere/local/var/named";
listen-on { 127.0.0.1; 100.168.100.50; };
allow-transfer { 100.168.100.10; };
allow-query { internal; };
allow-recursion { internal; };
recursion no;
fetch-glue no;
use-id-pool yes;
transfer-source 127.0.0.1;
pid-file "/hsphere/local/var/named/named.pid";
};

zone "." IN { type hint; file "local/named.ca"; };
zone "localhost" IN { type master; file "local/localhost.zone"; allow-update { none; }; };
zone "0.0.127.in-addr.arpa" IN { type master; file "local/named.local"; allow-update { none; }; };
zone "100.168.100.in-addr.arpa" { type slave; file "100.168.100"; masters { 100.168.100.10; }; };

include "zones_index.conf";

Thakns,

SW
-------------------------------------------------
WPPi.com | WPPi.Net
-------------------------------------------------
http://www.wppi.com | http://www.wppi.net
-------------------------------------------------
WPPi.com & WPPi.Net MailScanner Signature
This message has been scanned for viruses
and dangerous content by WPPi MailScanner,
and has been found to be clean.
-------------------------------------------------




Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 07:10 PM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0